On Fri, Jun 6, 2008 at 7:54 PM, Luke S Crawford <lsc@xxxxxxxxx> wrote: > "Filipe Brandenburger" <filbranden@xxxxxxxxx> writes: >> My boss asked me to harden a CentOS box by removing "hacker" tools, >> such as nmap, tcpdump, nc (netcat), telnet, etc. > > Removing network tools does not make it harder to break into the box, > however, it can make it harder to do something with it once you are in. > removing those tools might help keep an infection from spreading, but it > wont protect the box itself. (also, just installing the programs just > means that if your box get compromised, the hacker needs to install > some new packages. Not difficult, even without root- the attacker > can install to the compromised user homedir.) But removing networking would :) -- -matt _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Hardening CentOS by removing "hacker" tools
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: "CentOS mailing list" <centos@xxxxxxxxxx>
- Subject: Re: Hardening CentOS by removing "hacker" tools
- From: "Matt Shields" <mattboston@xxxxxxxxx>
- Date: Fri, 6 Jun 2008 20:03:49 -0400
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <m3skvqm85q.fsf@xxxxxxxxxxxxxxxxxx>
- References: <e814db780806061603p919ee46x2210555a1b84e7b9@xxxxxxxxxxxxxx> <m3skvqm85q.fsf@xxxxxxxxxxxxxxxxxx>
- References:
- Hardening CentOS by removing "hacker" tools
- From: Filipe Brandenburger
- Re: Hardening CentOS by removing "hacker" tools
- From: Luke S Crawford
- Hardening CentOS by removing "hacker" tools
- Prev by Date: Re: Hardening CentOS by removing "hacker" tools
- Next by Date: Re: Live CD?
- Previous by thread: Re: Hardening CentOS by removing "hacker" tools
- Next by thread: Re: Hardening CentOS by removing "hacker" tools
- Index(es):
 |